Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2022/11/14 12:0 a.m.19 views

Wordpress Like Button Plugin Authentication Bypass (CVE-2019-13344)

An authentication bypass vulnerability exists in the Wordpress plugin like button. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...

5CVSS6.2AI score0.45095EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/07/08 12:0 a.m.90 views

WordPress Like Button 1.6.0 Authentication Bypass

Exploit Title: WP Like Button 1.6.0 - Auth Bypass Date: 05-Jul-19 Exploit Author: Benjamin Lim Vendor Homepage: http://www.crudlab.com Software Link: https://wordpress.org/plugins/wp-like-button/ Version: 1.6.0 CVE : CVE-2019-13344 1. Product & Service Introduction: WP Like button allows you to a...

5CVSS0.4AI score0.45095EPSS
Exploits5
0day.today
0day.today
added 2019/07/08 12:0 a.m.239 views

WordPress Like Button 1.6.0 Plugin - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: WP Like Button 1.6.0 - Auth Bypass Exploit Author: Benjamin Lim Vendor Homepage: http://www.crudlab.com Software Link: https://wordpress.org/plugins/wp-like-button/ Version: 1.6.0 CVE : CVE-2019-13344 1. Product & Service...

5.3AI score0.45095EPSS
Exploits5
exploitpack
exploitpack
added 2019/07/08 12:0 a.m.66 views

WordPress Plugin Like Button 1.6.0 - Authentication Bypass

WordPress Plugin Like Button 1.6.0 - Authentication Bypass Exploit Title: WP Like Button 1.6.0 - Auth Bypass Date: 05-Jul-19 Exploit Author: Benjamin Lim Vendor Homepage: http://www.crudlab.com Software Link: https://wordpress.org/plugins/wp-like-button/ Version: 1.6.0 CVE : CVE-2019-13344 1...

5CVSS0.1AI score0.45095EPSS
Exploits5
CVE
CVE
added 2019/07/05 3:33 p.m.333 views

CVE-2019-13344

CVE-2019-13344 involves the CRUDLab WordPress plugin “WP Like Button” (versions up to 1.6.0). The root cause is in the contains() function of wp_like_button.php, which fails to verify the current user’s authorization, enabling any unauthenticated user to update plugin settings (e.g., via wp-admin...

5.3CVSS5.4AI score0.45095EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder